Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa
File: 3230322e3138302e35352e302f32342d3234203d3e203338313435.roa (raw, json)
Hash identifier: SjnwpKi1JCVbhwIXLEs/r82n8qCMkUN4R4DIR3vyOSc=
Subject key identifier: 87:AB:5B:9D:1C:3E:B7:C3:3E:E3:15:C8:93:55:CE:99:18:F2:03:71
Certificate issuer: /CN=365454AF0090F9E623861AF2120855412F7447D1
Certificate serial: 63B65BCBC20A4423F3CBDCA5DD81FCCC1888C975
Authority key identifier: 36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa
Signing time: Thu 12 Sep 2024 06:00:00 +0000
ROA not before: Thu 12 Sep 2024 05:55:00 +0000
ROA not after: Thu 11 Sep 2025 06:00:00 +0000
asID: 38145
IP address blocks: 202.180.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:b6:5b:cb:c2:0a:44:23:f3:cb:dc:a5:dd:81:fc:cc:18:88:c9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365454AF0090F9E623861AF2120855412F7447D1
Validity
Not Before: Sep 12 05:55:00 2024 GMT
Not After : Sep 11 06:00:00 2025 GMT
Subject: CN=87AB5B9D1C3EB7C33EE315C89355CE9918F20371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1c:66:ba:68:4a:b3:61:98:b8:06:1f:39:6e:
c1:d5:87:64:68:bc:a8:37:6d:1e:5c:0e:96:0a:17:
0a:5b:dc:c6:df:a4:35:cc:8a:16:cf:67:e7:5d:db:
6f:32:cc:56:34:43:4d:dd:94:ad:df:b9:f8:ea:ea:
32:aa:5b:07:be:51:8b:40:f4:ee:47:23:46:17:dc:
69:7f:79:75:ea:a5:8e:67:b1:f2:39:f3:f3:11:8b:
3e:2f:bd:15:81:74:00:b4:3f:a4:ee:02:61:6c:85:
20:40:6a:48:47:19:d2:46:d0:de:8d:b9:1e:ff:3d:
01:13:ff:a8:cd:ee:39:ec:8d:2a:e3:fd:d3:4a:0b:
9d:b9:98:d5:a0:7e:28:22:d5:06:f3:a0:23:37:1e:
f2:5e:35:a0:ef:cf:8e:ef:18:35:c2:9d:1b:af:85:
36:45:5d:d1:70:ba:a0:ae:0b:7f:9f:00:99:aa:e7:
c2:73:df:98:cd:e1:f2:b3:e0:69:c9:e5:8c:ee:d7:
08:92:84:e9:7d:dd:10:c3:96:6b:1c:01:86:3c:e4:
4c:78:2a:c1:5a:a1:81:fc:5f:75:5f:83:f2:d1:59:
f4:4a:bb:65:05:41:6d:21:7a:1c:0d:09:93:f1:a0:
fe:29:e0:28:7a:5e:f7:bd:2d:a2:62:2e:49:f5:bc:
ce:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:AB:5B:9D:1C:3E:B7:C3:3E:E3:15:C8:93:55:CE:99:18:F2:03:71
X509v3 Authority Key Identifier:
keyid:36:54:54:AF:00:90:F9:E6:23:86:1A:F2:12:08:55:41:2F:74:47:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/365454AF0090F9E623861AF2120855412F7447D1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/365454AF0090F9E623861AF2120855412F7447D1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57984e3a-48f9-4cda-be6c-4006c08f8fd2/0/3230322e3138302e35352e302f32342d3234203d3e203338313435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.180.55.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:a6:8a:22:b9:1d:15:93:35:ac:ab:bb:8b:70:94:2b:e3:
28:03:d3:17:19:7d:28:01:57:3a:df:39:22:85:cc:93:75:5d:
ca:9b:0a:0c:b9:d6:49:fa:30:75:28:f0:59:8f:d1:85:31:97:
b0:25:36:6e:a7:69:96:27:0b:f7:ab:f8:cc:1a:df:40:97:a3:
35:66:b2:5d:e7:cf:23:a3:bf:ab:54:be:a6:eb:ae:40:31:bf:
f4:40:95:57:f3:8e:6e:ad:aa:b8:42:c5:f9:48:04:ca:43:50:
4d:31:a3:ee:73:6d:0c:d2:c1:3d:6c:1d:e8:4c:4c:56:e7:48:
c4:89:5c:3d:3e:0a:38:f0:2f:83:cd:5e:5c:2e:8e:39:b8:0a:
99:e8:73:fb:b2:14:58:02:cd:37:6b:e3:8a:cd:f0:dd:33:85:
7d:fe:51:2c:bb:e0:26:bb:e0:f3:7a:e4:fc:cb:c3:a1:9a:f3:
37:67:d8:53:2c:97:ad:75:07:21:bf:0f:f9:1b:f1:10:41:cf:
14:c3:c6:63:88:4b:a3:73:71:d4:dd:83:a6:bc:15:c9:f4:df:
87:e9:e7:34:b1:10:97:33:0d:c8:10:41:9e:80:29:c7:06:d8:
fe:37:0d:37:28:1a:a1:6f:88:79:8a:43:b7:1d:1f:6d:f3:02:
c1:56:84:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:10:18 2025 by rpki-client